201c1f19001c33cf3d775606f63f17bdec381df4bbed66cf3bea952c798b8122 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd1948a17db8636cdd2e6b53ad299505
Size

523KB
Sample

240316-e1sa1abg91
MD5

cd1948a17db8636cdd2e6b53ad299505
SHA1

b38da13cd65004ade58a0674416bc334ea616d92
SHA256

201c1f19001c33cf3d775606f63f17bdec381df4bbed66cf3bea952c798b8122
SHA512

07dd605cbef2d92fe22b921e4143aa42436816d4b92856dc84cdacded758d310394f1b4ad65d7cf9afe6278472aacfc79a89af6a69b475a24981da13cb06cca9
SSDEEP

12288:zuoD9ncoBa/AVlEmJQSkJSZB99F7Sx6kunMqvo469t2ShYeE:zjD9ncoa/A/AkRSx6kFFB6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cd1948a17db8636cdd2e6b53ad299505
- Size
  
  523KB
- MD5
  
  cd1948a17db8636cdd2e6b53ad299505
- SHA1
  
  b38da13cd65004ade58a0674416bc334ea616d92
- SHA256
  
  201c1f19001c33cf3d775606f63f17bdec381df4bbed66cf3bea952c798b8122
- SHA512
  
  07dd605cbef2d92fe22b921e4143aa42436816d4b92856dc84cdacded758d310394f1b4ad65d7cf9afe6278472aacfc79a89af6a69b475a24981da13cb06cca9
- SSDEEP
  
  12288:zuoD9ncoBa/AVlEmJQSkJSZB99F7Sx6kunMqvo469t2ShYeE:zjD9ncoa/A/AkRSx6kFFB6
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/pwgen.dll
- Size
  
  16KB
- MD5
  
  a555472395178ac8c733d90928e05017
- SHA1
  
  f44b192d66473f01a6540aaec4b6c9ac4c611d35
- SHA256
  
  82ae08fced4a1f9a7df123634da5f4cb12af4593a006bef421a54739a2cbd44e
- SHA512
  
  e6d87b030c45c655d93b2e76d7437ad900df5da2475dd2e6e28b6c872040491e80f540b00b6091d16bc8410bd58a1e82c62ee1b17193ef8500a153d4474bb80a
- SSDEEP
  
  96:Rb32p/4mp563gfdaDf2GEFd69qI214YgU+dXXDtFCOdd7KPcC+pyTY62l2z252NJ:YCQAED61dpEEN5VifUbw2mDG0
Score

3^/10
behavioral3 behavioral4
- Target
  
  Launcher.exe
- Size
  
  104KB
- MD5
  
  dffe6eacfd1e891ce776150fbfa6bc29
- SHA1
  
  151125ec91e451ca551855559b5eef0cbbe0fd95
- SHA256
  
  8fef87a441e0b7461445cf3b14028e99195fbfee6195e71a2984a1a134c1840b
- SHA512
  
  5811690f3a37f9a60a6536809aa60b298057726e7ad58623c52f94a6925f6db9f8c64039d9e466772923e0871cada46a49fcf755ff940350c1d45d3e0b86103b
- SSDEEP
  
  3072:ZoDaXX7d+GEudztEpd3lQ4qNkPdBDPWT:GGoG95GQ4hB
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6